29864c5919182b45081fa821f5cb12fb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29864c5919182b45081fa821f5cb12fb_JaffaCakes118
Size

78KB
MD5

29864c5919182b45081fa821f5cb12fb
SHA1

e61fc3323f66ff640fab431d23a727f615cc65e8
SHA256

47809464f91d76d5fd9ce0b06baa108520bedb888c5828968490c261868a3e12
SHA512

b904f274927aa58b6ce849d82739578c950978bc082c2c668a6387fba273bc36a2922ff86deccf30de00a79e4af04d1ffbc23b0a3c9c46515c1c2f0739dde9dd
SSDEEP

768:Pop64zq0JaZb+TgPptJXsPw93U7CpKOl+t5OgCVolsyuBw/EPc:PotqiaZL5XsPJsKc65OCsyZ/EPc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29864c5919182b45081fa821f5cb12fb_JaffaCakes118

Files

29864c5919182b45081fa821f5cb12fb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

CODE
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

bSs
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ReLOc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.IDaTa
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Bss
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Bss
Size: 5KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ